Malvertising stories

Attackers abuse trusted tools, remote support software and stolen SSO sessions to breach systems, ReliaQuest says.

Cybercriminals exploit Keitaro ad tracker to cloak AI trading scams and malware, tying some 15,500 malicious domains into a hidden network.

Keitaro ad tracker abused in 15,500 scam and malware domains, as fraudsters cloak AI-themed investment lures from security watchdogs.

Fake Claude AI search ads are spreading info-stealing malware, hijacking developer credentials and cloud access via spoofed download sites.

Bitdefender exposes 26,000 Meta ads in 25 countries pushing fake investment schemes, impersonating banks, media and public figures.

HP reports a surge in AI-powered “flat-pack” cyberattacks as criminals trade sophistication for speed, low cost and mass customisation.

Hijacked Google Ads accounts are serving bogus installers that trick Mac users into running MacSync stealer via fake Evernote guides.

Fake Olympics shop ads on Meta push fans to cloned sites mimicking Milano Cortina 2026 store to steal card and personal details.

BADIIS malware is hijacking over 1,800 IIS servers worldwide, quietly boosting illicit gambling and crypto phishing sites via poisoned SEO.

Cloaking dominates PropellerAds' 2025 safety report as stricter checks drive a 35% rise in blocked campaigns and more account suspensions.

NordVPN will use CrowdStrike threat intelligence to power its Threat Protection Pro tool, bringing enterprise-grade data to consumer security.

Hackers are hijacking ageing home routers worldwide, covertly rewiring DNS to quietly cash in on everyday web browsing traffic.

DoubleVerify flags surge in “zombie” Android app fraud as hijacked dormant accounts push bogus games that drain ad budgets and devices.

Online shopping scams in the UK jumped 416% in late 2025 as malvertising, social media fake shops and deepfake frauds surged, Gen warns.

ReliaQuest warns BaoLoader and trust-based lures are surging, as attackers ditch zero-days for social engineering and valid certificates.

Once harmless web clutter, parked domains now funnel over 90% of visitors to scams, malware and illegal content, Infoblox researchers warn.

Infostealer malware exploits employee mistakes to steal sensitive data, posing a severe threat to businesses and client security worldwide.

A Facebook malvertising campaign is targeting Android users in the EU with Brokewell malware disguised as a fake TradingView app to steal crypto assets.

ReliaQuest reveals surge in social engineering cyber threats, with ClickFix tactics and ransomware group shifts raising new security challenges in 2025.

HP Wolf Security warns of rise in malware attacks using fake Booking.com sites exploiting users' click fatigue during the busy 2025 summer holiday season.